sherlock

module

v1.0.0 Latest Latest Go to latest Published: Aug 10, 2020 License: MIT

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/akshay-rohatgi/sherlock

Links

Open Source Insights

README ¶

Sherlock

Sherlock is a tool for incident response teams to quickly gather log files and find system resources and binaries that may have been tampered with by attackers. This tool can also be used to establish baselines before an attack.

Information

Blue teaming and incident response can be stressful, hopefully this tool makes it a little easier!
Has only been tested on Debian based systems so far.

Usage

make # uses makefile and builds in /src/sherlock
sudo src/sherlock help

Services supported

Nginx
Apache2
OpenSSH-Server
MySQL Server

Example

sudo ./sherlock help

help_page

sudo ./sherlock nginxConfigSave

nginx_config_save

Dev environment

git clone https://github.com/Akshay-Rohatgi/Sherlock
cd Sherlock && bash misc/install.sh

Directories ¶

Path	Synopsis
src

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL